Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
26 Cards in this Set
- Front
- Back
2 Categories of principals
|
Indivisible
Collection |
|
Indivisible Principal
|
An entity that exists independanlty of other entities.
e.g. SQL Logins & Windows Logins |
|
Collection Principal
|
Principal that represents a collection of entities.
e.g. Windows Group |
|
3 tiers in the security model
|
Principals, Securables, and permissions.
|
|
Principal
|
individuals, groups, and processes that can request access to a SQL server objects
|
|
Securables
|
Objects or resources to which SQL server controls access.
|
|
Permissions
|
Type or level of access that is granted on securables to principals.
|
|
sysadmin
|
Can do anything on the SQL Server. This role is equivalent to all other fixed server roles combined.
|
|
ServerAdmin
|
Can manage server-wide settings.
|
|
Setupadmin
|
Can execute the stored procedure sp_serveroptions and create or remove linked servers
|
|
securityadmin
|
can manage server logins
|
|
processadmin
|
can manage teh process running as part or
|
|
dbcreator
|
Can create and alter the user databases
|
|
diskadmin
|
can manage the files on disk
|
|
bulkadmin
|
can launch the BULK INSERT statment
|
|
db_accessadmin
|
Can: Alter any user, create schema
|
|
db_backupoperator
|
Can: Back up database, back up log, force a checkpoint
|
|
db_datareader
|
Can: Issue select statements against the database.
|
|
db_datawriter
|
Can: issue insert, delete, and update statements against the database
|
|
db_ddladmin
|
Can: Issue most CREATE and ALTER statements against the database. Has the power to issue all DDL commands against the database
|
|
db_denydatareaer
|
Cannot: Issue select statement
|
|
db_denydatawriter
|
cannot: issue insert, delete, and update
|
|
db_owner
|
Can: Perform all configuration and maintenance activities on the database
|
|
db_securityadmin
|
can: ALTER application roles or custom roles and CREATE SCHEMA or VIEW DEFINITION
|
|
public
|
All users belong to this role and the public role cannot perform any action on newly created databases by default. The special guest user account is also a member of
|
|
3 Types of Replication
|
Snapshot,Transactional, merge
|